AT

Open to opportunities

Aaron Thummel

@aaronthummel

I’m a Senior Security Operations & Incident Response leader focused on detection engineering and threat hunting.

What I'm looking for

I’m looking for a security org that empowers SOC/IR engineering—where I can lead incident response, build detections-as-code, improve playbooks with measurable outcomes, mentor teams, and ship better visibility across cloud and enterprise systems.

I’m a cybersecurity professional and perpetual student of the craft, with a strong incident-response and detection-engineering focus. I bring a highly analytical, engineering mindset to protecting remote-first, cloud, and on-premise environments—combining deep log work with clear, stakeholder-ready communication.

I’ve been SOC-oriented for 6+ years and a generalist across IT/security for 20+ years. Across enterprise and cloud environments, I lead triage, investigation, and remediation of complex security events as the primary incident lead—reducing triage time to minutes instead of hours and containment time to hours instead of days/weeks.

I build repeatable defenses by developing and optimizing incident response playbooks, operational procedures, and detections-as-code workflows. I’ve integrated security tooling (including Cribl) to improve visibility and operational efficiency, while conducting security assessments and risk analyses to drive concrete security outcomes.

I also lead people and process: mentoring teams, running tabletop exercises, and supporting compliance initiatives such as FedRAMP and SOC 2. From incident debriefs and root-cause analyses (RCA) to vendor contract maintenance, I help mature security capabilities and turn lessons learned into measurable defensive improvements.

Experience

Work history, roles, and key accomplishments

CR

Senior Security Analyst

Cribl

Jan 2024 - Apr 2026 (2 years 3 months)

Led security incident monitoring and response across enterprise and cloud environments, serving as primary lead for triage, investigation, and remediation of complex security events. Developed incident response playbooks and procedures that reduced triage time to minutes instead of hours and containment time to hours instead of days/weeks.

Incident Response Threat Hunting Playbook Development Security Operations Cribl Platform Integration SIEM Tuning Cloud Security

Education

Degrees, certifications, and relevant coursework

WU

Western Governors University

Master of Science, Cybersecurity & Information Assurance

2020 - 2023

Earned a Master of Science in Cybersecurity & Information Assurance from Western Governors University from 2020 to 2023.

WU

Western Governors University

Bachelor of Science, Cybersecurity & Information Assurance

2017 - 2019

Earned a Bachelor of Science in Cybersecurity & Information Assurance from Western Governors University from 2017 to 2019.

Tech stack

Software and tools used professionally

Gmail

Okta

PowerShell

Linux

macOS

Windows

Gemini

CrowdStrike

Root Cause

1Password

JAMF

Refine

Cursor

Wiz

Kolide

Bash

N8N

Dive

Enhance

Tines

Loops

Remote

OpenClaw

Availability

Open to opportunities

Location

United States

Authorized to work in

Portfolio

cribl.io/clp/amazing

Job categories

Senior Security Analyst Security Operations (SOC) Analyst Incident Responder Detection Engineer Digital Forensics Analyst Security Team Lead Senior Cybersecurity Analyst Senior Information Security Analyst Senior Security Operations Analyst Senior Cloud Security Analyst Senior SOC Analyst

Interested in hiring Aaron?

You can contact Aaron and 90k+ other talented remote workers on Himalayas.

People also viewed

View all talent

Find your dream job

Sign up now and join over 250,000+ remote workers who receive personalized job alerts, curated job matches, and more for free!